Hallem said that, according to one developer, one of the MySQL flaws could be exploited by a sequence of SQL statements.

The problem, however, is moot, since all defects have been addressed by MySQL ABin short order. "We gave them the results about two weeks ago," Hallem said. "They had them all addressed in two days. It was a very fast turnaround."
Zack Urlocker, vice president of marketing at MySQL, said the company was happy to find out about the flaws, and that fixes for all affected platforms and versions are now in placeeven if the so-called problems are actually impossible to exploit.
"Some [defects] are theoretical and some are platform-specific," he said. "They look for things that [could potentially happen, such as] calling functions not checking return value[such things] where it may be theoretically impossible for it to cause problems, but well fix it anyway."
Check out eWEEK.coms for the latest database news, reviews and analysis.

Lisa Vaas is News Editor/Operations for eWEEK.com and also serves as editor of the Database topic center. Since 1995, she has also been a Webcast news show anchorperson and a reporter covering the IT industry. She has focused on customer relationship management technology, IT salaries and careers, effects of the H1-B visa on the technology workforce, wireless technology, security, and, most recently, databases and the technologies that touch upon them. Her articles have appeared in eWEEK's print edition, on eWEEK.com, and in the startup IT magazine PC Connection. Prior to becoming a journalist, Vaas experienced an array of eye-opening careers, including driving a cab in Boston, photographing cranky babies in shopping malls, selling cameras, typography and computer training. She stopped a hair short of finishing an M.A. in English at the University of Massachusetts in Boston. She earned a B.S. in Communications from Emerson College. She runs two open-mic reading series in Boston and currently keeps bees in her home in Mashpee, Mass.